Really? Where do you source your information you right-wing hippie? The primates are and some have already been shipped to other primate labs. Acquiring and taking care of primates (or any animal) in a public institution is under a very strict oversight from several government agencies as well as institutional committee's. These animals have care and space very similar to a regular zoo. If any of the government agencies would have as strict oversight as these do, we wouldn't have disasters like the Keystone pipeline leaks, BP's oil rig or Exxon-Valdez.
I can't tell you where exactly they're going, but a number of them are already well taken care off by other primate labs. Also, the equipment is being sent to other primate labs.
They want their browsers back. Seriously, who thought that we should go back to non-standardized, browser-specific websites? Blink tag, marquee anyone? How about bgsound?
Possession doesn't always mean that you were the perpetrator of the crime. All it means is that someone or something has put their stuff with your stuff for whatever reason (transportation, framing, extortion...).
It has come that mere possession of an item (whether it be drugs, weapons, pornography or state secrets) has become a crime but it is morally wrong to convict someone if all you can prove is possession because it doesn't prove who committed the crime. In best case it is (or should be) circumstantial evidence.
Most likely he didn't use a simple passphrase. 256 bits is only 32 characters. And most (decent) passphrase-based systems unlock a key which is then used to unlock the rest of the data.
And that is IF he used a passphrase and IF they know what crypto algorithm he chose. Truecrypt for example allows you to stack encryption algorithms so you may even have a flawed algorithm (one with a hidden backdoor), they still can't crack the rest.
But you know that if the government wants access to them, they'll secretly make a request to both public and private data. And even so, the government would have to write a crawler specifically to target public pictures which may be against Facebook's TOS and the government is trying to legalize TOS'es so they are unlawful to break.
a) Facebook photo's are (or should be) private especially to the government b) Even if it's 99.9% accurate, that still yields a lot of false positives. And having worked with that stuff, you would be glad to have 90% recognition.
As I said above, the current transmissions we may be receiving puts them somewhere in the beginning of the middle ages. We have only been transmitting stuff out that may be strong enough to be detected for ~100 years.
The Pioneer's have a transmitter of about 8W and are 0.001 lightyears away and one of them is dead, the other is barely discernible. If we take a very generous estimate and say maybe 5kW can be detected at 1ly - you will need several TW to be detectable that far. Not necessarily impossible but very unlikely.
And even looking at them now would put them at the end of the Roman empire and the beginning of the Byzantine (when Christianity became more of a cult) to give you a reference point. We probably won't be receiving any radio transmissions (which would be the most likely evidence of an intelligent species) from them for another ~1000 years and that's if there is even an intelligent species there that developed as quickly as we humans did and even if they are sending out radio transmissions, would it be coming from the right direction, have enough power and linearity to be differentiated from background noise.
You believe the government can make any computer-based system that costs less than $3.2M/year? I think the headhunter fees alone would dwarf that. And your cost estimate is very, very conservative. Government employees don't get paid minimum wage - estimate approximately $15-25/h + pension funds + full medical coverage + office overhead and 60% of the workforce actually doing nothing.
Most people think that falling back onto 3G, 2G or 1G would save bandwidth but the opposite is through, the later the generation, the more efficient the data transfer becomes. 4G networks (which are as of yet unavailable in the US) are purely packet-based (voice and data) and can handle much more voice channels over a lot smaller radio bandwidth.
The problem is that the US is quickly falling behind to 3rd world standards on all aspects of society and technology.
Lol, so there have been 73 CVE's for an open source Linux platform (if you actually look at the CVE's, they are all duplicates the same problem on several of the distro's (Fedora, Oracle, Red Hat,... who are using the same packages) while you have 80-something problems for Windows?
Plus the kernel maintainers are generally the one publicizing many individual potential remote exploits as they go on fixing code. If Microsoft internally fixes a problem they don't necessarily release a CVE, they just roll it up in a big patch and call it 1 problem.
And even though Linux/Unix/BSD is currently bigger (device-wise) than Windows - it runs on 99% of embedded and mobile devices, more than there are desktops and most of them unpatched for years the number of infections are surprisingly low.
It already is riddled with malware. Windows 7 and 8 still struggle with it. It's time to simply throw the entire thing out and start over with a more secure base (such as BSD/Linux)
That's bullshit. I hired people before, you can run hundreds of jobs for that budget. We sift through hundreds of applicants for a single job - PhD-level programmer in medical image processing, we don't even have to post on Monster, we simply get dozens of request through our own website.
Programmers are a dime a dozen, a halfway decent Java/PHP programmer can be had for $40k and I have plenty of friends that are looking for jobs and moving away to take them at minimal rates. If you really have an employee that can't create a simple JSP page in 2 months, then you have really shitty management, if you can't find an employee to save your life, you have really shitty hiring processes.
IF you REALLY need that type of talent, then H1B is not the way to do it. I work at a University, we hire talent from all over the world and there are many other ways of hiring PhD-levels and people that have really high skills, there are special visa's for that. H1B is to get cheap "talent" and the University uses it as well to get PhD's on a project for a $30k salary.
Reading through the actual documentation, the concept is very similar. Tokens get encrypted on the device and on the provider's end, the service only verifies the validity of the messages using the TLS certificates.
How 'bout that backup? I have had drives from massive number of vendors and types. They're all the same actually, they have very similar failure rates. Even Enterprise SATA and SAS have similar failure rates than Desktop SATA drives.
I don't think you know how things work in encryption these days...
You don't need the username/password information to encrypt things. iMessage and most of the communication of short messages between Apple devices and between Apple's cloud and the devices is based on the XMPP system which uses simple S/MIME to encrypt similar to how e-mail encryption works. It's end-to-end encryption. Could Apple build-in something to transfer the private keys from the client to the server and intercept it there - sure - but that would be 1) against the XMPP standard, 2) easily noticed and exploitable, 3) may even be illegal.
A good encryption system with a sufficiently sized key is both physically and theoretically (if you calculate out the physics) uncrackable in a short period of time. Off course, old encryption systems (such as 40-bit encryption) is easily cracked in minutes with a datacenter full of GPU's these days.
Most decent cell phones have built-in encryption which wipes the phone by simply deleting the built-in keys. Some cheap-ass droids and the 'feature-phones' may not have it built-in but it's fairly easy to wipe a phone that has the feature.
Off course, if you use the wrong methods (such as simply 'restoring' the phone) or using unencrypted external media, not much is going to help you. If you really need to get rid of your data (eg. in an enterprise environment) I would hope those in charge of the devices would know how to configure and manage the phones correctly so they can be remotely wiped etc
Not these days with SSD, hybrids and I suspect in the future regular hard drives as well employ data compression and deduplication on the fly in order to save on writes and thus less wearing on the memory chips. There's also a 5-25% (depending on quality and manufacturer) of extra space to perform wear leveling. dd if=/dev/random of=/dev/xxx a couple of times may be better given enough entropy.
Really? Where do you source your information you right-wing hippie? The primates are and some have already been shipped to other primate labs. Acquiring and taking care of primates (or any animal) in a public institution is under a very strict oversight from several government agencies as well as institutional committee's. These animals have care and space very similar to a regular zoo. If any of the government agencies would have as strict oversight as these do, we wouldn't have disasters like the Keystone pipeline leaks, BP's oil rig or Exxon-Valdez.
I can't tell you where exactly they're going, but a number of them are already well taken care off by other primate labs. Also, the equipment is being sent to other primate labs.
They want their browsers back. Seriously, who thought that we should go back to non-standardized, browser-specific websites? Blink tag, marquee anyone? How about bgsound?
Possession doesn't always mean that you were the perpetrator of the crime. All it means is that someone or something has put their stuff with your stuff for whatever reason (transportation, framing, extortion ...).
It has come that mere possession of an item (whether it be drugs, weapons, pornography or state secrets) has become a crime but it is morally wrong to convict someone if all you can prove is possession because it doesn't prove who committed the crime. In best case it is (or should be) circumstantial evidence.
Most likely he didn't use a simple passphrase. 256 bits is only 32 characters. And most (decent) passphrase-based systems unlock a key which is then used to unlock the rest of the data.
And that is IF he used a passphrase and IF they know what crypto algorithm he chose. Truecrypt for example allows you to stack encryption algorithms so you may even have a flawed algorithm (one with a hidden backdoor), they still can't crack the rest.
But you know that if the government wants access to them, they'll secretly make a request to both public and private data. And even so, the government would have to write a crawler specifically to target public pictures which may be against Facebook's TOS and the government is trying to legalize TOS'es so they are unlawful to break.
a) Facebook photo's are (or should be) private especially to the government
b) Even if it's 99.9% accurate, that still yields a lot of false positives. And having worked with that stuff, you would be glad to have 90% recognition.
As I said above, the current transmissions we may be receiving puts them somewhere in the beginning of the middle ages. We have only been transmitting stuff out that may be strong enough to be detected for ~100 years.
The Pioneer's have a transmitter of about 8W and are 0.001 lightyears away and one of them is dead, the other is barely discernible. If we take a very generous estimate and say maybe 5kW can be detected at 1ly - you will need several TW to be detectable that far. Not necessarily impossible but very unlikely.
And even looking at them now would put them at the end of the Roman empire and the beginning of the Byzantine (when Christianity became more of a cult) to give you a reference point. We probably won't be receiving any radio transmissions (which would be the most likely evidence of an intelligent species) from them for another ~1000 years and that's if there is even an intelligent species there that developed as quickly as we humans did and even if they are sending out radio transmissions, would it be coming from the right direction, have enough power and linearity to be differentiated from background noise.
You believe the government can make any computer-based system that costs less than $3.2M/year? I think the headhunter fees alone would dwarf that. And your cost estimate is very, very conservative. Government employees don't get paid minimum wage - estimate approximately $15-25/h + pension funds + full medical coverage + office overhead and 60% of the workforce actually doing nothing.
Most people think that falling back onto 3G, 2G or 1G would save bandwidth but the opposite is through, the later the generation, the more efficient the data transfer becomes. 4G networks (which are as of yet unavailable in the US) are purely packet-based (voice and data) and can handle much more voice channels over a lot smaller radio bandwidth.
The problem is that the US is quickly falling behind to 3rd world standards on all aspects of society and technology.
Lol, so there have been 73 CVE's for an open source Linux platform (if you actually look at the CVE's, they are all duplicates the same problem on several of the distro's (Fedora, Oracle, Red Hat, ... who are using the same packages) while you have 80-something problems for Windows?
Plus the kernel maintainers are generally the one publicizing many individual potential remote exploits as they go on fixing code. If Microsoft internally fixes a problem they don't necessarily release a CVE, they just roll it up in a big patch and call it 1 problem.
And even though Linux/Unix/BSD is currently bigger (device-wise) than Windows - it runs on 99% of embedded and mobile devices, more than there are desktops and most of them unpatched for years the number of infections are surprisingly low.
Anything is good enough for that, people are buying tablets for that reason which 99% of them run a *nix version at the core anyway.
It already is riddled with malware. Windows 7 and 8 still struggle with it. It's time to simply throw the entire thing out and start over with a more secure base (such as BSD/Linux)
That's bullshit. I hired people before, you can run hundreds of jobs for that budget. We sift through hundreds of applicants for a single job - PhD-level programmer in medical image processing, we don't even have to post on Monster, we simply get dozens of request through our own website.
Programmers are a dime a dozen, a halfway decent Java/PHP programmer can be had for $40k and I have plenty of friends that are looking for jobs and moving away to take them at minimal rates. If you really have an employee that can't create a simple JSP page in 2 months, then you have really shitty management, if you can't find an employee to save your life, you have really shitty hiring processes.
IF you REALLY need that type of talent, then H1B is not the way to do it. I work at a University, we hire talent from all over the world and there are many other ways of hiring PhD-levels and people that have really high skills, there are special visa's for that. H1B is to get cheap "talent" and the University uses it as well to get PhD's on a project for a $30k salary.
Reading through the actual documentation, the concept is very similar. Tokens get encrypted on the device and on the provider's end, the service only verifies the validity of the messages using the TLS certificates.
How 'bout that backup? I have had drives from massive number of vendors and types. They're all the same actually, they have very similar failure rates. Even Enterprise SATA and SAS have similar failure rates than Desktop SATA drives.
Yes. It was sometimes on-controller cache with BBU, sometimes actual SSD's, sometimes the spinning rust were caches for tapes.
I don't think you know how things work in encryption these days...
You don't need the username/password information to encrypt things. iMessage and most of the communication of short messages between Apple devices and between Apple's cloud and the devices is based on the XMPP system which uses simple S/MIME to encrypt similar to how e-mail encryption works. It's end-to-end encryption. Could Apple build-in something to transfer the private keys from the client to the server and intercept it there - sure - but that would be 1) against the XMPP standard, 2) easily noticed and exploitable, 3) may even be illegal.
Your source is Wired though...
A good encryption system with a sufficiently sized key is both physically and theoretically (if you calculate out the physics) uncrackable in a short period of time. Off course, old encryption systems (such as 40-bit encryption) is easily cracked in minutes with a datacenter full of GPU's these days.
Just use a Linux distro - problems solved. Create a guest account that automatically wipes every time you log out.
Most decent cell phones have built-in encryption which wipes the phone by simply deleting the built-in keys. Some cheap-ass droids and the 'feature-phones' may not have it built-in but it's fairly easy to wipe a phone that has the feature.
Off course, if you use the wrong methods (such as simply 'restoring' the phone) or using unencrypted external media, not much is going to help you. If you really need to get rid of your data (eg. in an enterprise environment) I would hope those in charge of the devices would know how to configure and manage the phones correctly so they can be remotely wiped etc
It's not Windows.
Most systems 16 years ago were very secure (except Windows). Also, most systems didn't need to reboot for security updates (except Windows).
Not these days with SSD, hybrids and I suspect in the future regular hard drives as well employ data compression and deduplication on the fly in order to save on writes and thus less wearing on the memory chips. There's also a 5-25% (depending on quality and manufacturer) of extra space to perform wear leveling. dd if=/dev/random of=/dev/xxx a couple of times may be better given enough entropy.